Ecosyste.ms: Awesome
An open API service indexing awesome lists of open source software.
https://github.com/mhmdiaa/chronos
Wayback Machine OSINT Framework
https://github.com/mhmdiaa/chronos
infosec mapping penetration-testing penetration-testing-tools pentesting recon reconnaissance security security-tools wayback-machine web-application-security wordlist wordlist-generator wordlists
Last synced: 14 days ago
JSON representation
Wayback Machine OSINT Framework
- Host: GitHub
- URL: https://github.com/mhmdiaa/chronos
- Owner: mhmdiaa
- License: mit
- Created: 2017-08-01T21:05:36.000Z (over 7 years ago)
- Default Branch: main
- Last Pushed: 2024-07-28T17:46:00.000Z (5 months ago)
- Last Synced: 2024-11-05T21:45:14.426Z (about 1 month ago)
- Topics: infosec, mapping, penetration-testing, penetration-testing-tools, pentesting, recon, reconnaissance, security, security-tools, wayback-machine, web-application-security, wordlist, wordlist-generator, wordlists
- Language: Go
- Homepage:
- Size: 198 KB
- Stars: 143
- Watchers: 1
- Forks: 32
- Open Issues: 1
-
Metadata Files:
- Readme: README.md
- License: LICENSE
Awesome Lists containing this project
- project-awesome - mhmdiaa/chronos - Wayback Machine OSINT Framework (Go)
- awesome-hacking-lists - mhmdiaa/chronos - Wayback Machine OSINT Framework (Go)
README
# Chronos
Wayback Machine OSINT Framework
- [Installation](#installation)
- [Example Usage](#example-usage)
- [Extract endpoints and URLs from archived JavaScript code](#extract-endpoints-and-urls-from-archived-javascript-code)
- [Calculate archived favicon hashes](#calculate-archived-favicon-hashes)
- [Extract archived page titles](#extract-archived-page-titles)
- [Extract paths from archived robots.txt files](#extract-paths-from-archived-robotstxt-files)
- [Extract URLs from archived sitemap.xml files](#extract-urls-from-archived-sitemapxml-files)
- [Extract endpoints from archived API documentation](#enumerate-endpoints-from-api-documentation)
- [Find S3 buckets in archived pages](#find-s3-buckets-in-archived-pages)
- [Modules](#modules)
- [Command-line Options](#command-line-options)
## Installation
```
go install github.com/mhmdiaa/chronos@latest
```
## Example Usage
### Extract endpoints and URLs from archived JavaScript code
```
chronos -target "denali-static.grammarly.com/*" -module jsluice -output js_endpoints.json
```
[](https://asciinema.org/a/lm8hSxIMWYk8f3wolSeNYJewO)
### Calculate archived favicon hashes
```
chronos -target "netflix.com/favicon.ico" -module favicon -output favicon_hashes.json
```
[](https://asciinema.org/a/sNKQA7XXnAFmOSKYUQyoph1vJ)
### Extract archived page titles
```
chronos -target "github.com" -module html -module-config "html.title=//title" -snapshot-interval y -output titles.json
```
[](https://asciinema.org/a/avNyaQoPN8WQ2vZkyrql7aYf0)
### Extract paths from archived robots.txt files
```
chronos -target "tripadvisor.com/robots.txt" -module regex -module-config 'regex.paths=/[^\s]+' -output robots_paths.json
```
[](https://asciinema.org/a/zXw1XvhyNOIKPd41HWjWQvoIx)
### Extract URLs from archived sitemap.xml files
```
chronos -target "apple.com/sitemap.xml" -module xml -module-config "xml.urls=//urlset/url/loc" -limit -5 -output sitemap_urls.json
```
[](https://asciinema.org/a/tJAWMuDx6z8G0pQqRCZR3WJiU)
### Extract endpoints from archived API documentation
```
chronos -target "https://docs.gitlab.com/ee/api/api_resources.html" -module html -module-config 'html.endpoint=//code' -output api_docs_endpoints.json
```
[](https://asciinema.org/a/5yrrAnt46CHJqlhja4T48ym8u)
### Find S3 buckets in archived pages
```
chronos -target "github.com" -module regex -module-config 'regex.s3=[a-zA-Z0-9-\.\_]+\.s3(?:-[-a-zA-Z0-9]+)?\.amazonaws\.com' -limit -snapshot-interval y -output s3_buckets.json
```
[](https://asciinema.org/a/HKma8ycDMgHO6RPThjBXrOlrp)
## Modules
| Module | Description |
|-------------|---------------------------------------------------------------|
| regex | Extract regex matches |
| jsluice | Extract URLs and endpoints from JavaScript code using jsluice |
| html | Query HTML documents using XPath expressions |
| xml | Query XML documents using XPath expressions |
| favicon | Calculate favicon hashes |
| full | Get the full content of snapshots |
## Command-line Options
```
Usage of chronos:
-target string
Specify the target URL or domain (supports wildcards)
-list-modules
List available modules
-module string
Comma-separated list of modules to run
-module-config value
Module configuration in the format: module.key=value
-module-config-file string
Path to the module configuration file
-match-mime string
Comma-separated list of MIME types to match
-filter-mime string
Comma-separated list of MIME types to filter out
-match-status string
Comma-separated list of status codes to match (default "200")
-filter-status string
Comma-separated list of status codes to filter out
-from string
Filter snapshots from a specific date (Format: yyyyMMddhhmmss)
-to string
Filter snapshots to a specific date (Format: yyyyMMddhhmmss)
-limit string
Limit the number of snapshots to process (use negative numbers for the newest N snapshots, positive numbers for the oldest N results) (default "-50")
-snapshot-interval string
The interval for getting at most one snapshot (possible values: h, d, m, y)
-one-per-url
Fetch one snapshot only per URL
-threads int
Number of concurrent threads to use (default 10)
-output string
Path to the output file
```